Nortel VPN Windows client: password stored in memory

Take heed, those that use a Nortel VPN for their corporate networks. The Windows client happens to store both the encrypted version of the password in the registry, and a clear-text version in memory.



To: BugTraq
Subject: Nortel VPN Client Issue: Clear-text password stored in memory
Date: Mar 22 2005 5:12PM
Author: Roy Hills
Message-ID: <[email protected]>
Nortel VPN Client Issue: Clear-text password stored in memory
Summary:
NTA Monitor have discovered a password disclosure issue in the Nortel
Windows VPN client: The Nortel client stores the password in an obfuscated
form in the Windows registry, but it also stores the unencrypted password
in process memory.
The Nortel VPN client is used for remote access IPsec VPNs, typically in
conjunction with the Nortel Contivity VPN router.
The vendor has been notified of this issue.


Via Bugtraq


Personal note: While my corporation uses Nortel’s VPN, I suspect that even with the password in clear text, it would do no good in the current standing since we use two-part authentication. But those that do not, beware.